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// Obtain all information from the Extranet Switch 
// The result will then be "imported" into the OCM 
// product. 

// The "back"- statements are used to symbolize the 

// end of a section, it also makes it easier to import 

Error=Error 

// Obtain info Extranet Switch Basic Tab 

" ExtranetDevice . IP_ADDR. IP__ADDR " 

call omget using { "dns . systemipaddress " } 

" \nExtranetDevice .HOSTNAME . HOSTNAME " 

call omget using { "dns . systemname" } 

" \nExtranetDevice . SWITCHJTYPE . SWITCHJTYPE " - 

call omget using {" flash . Mode iNumber" } 

" \nExtranetDevice . CUR_VERSI0N . CUR_VERSION " 

call omget using { "DirRestore . CurVersion" } 

" \nExt ranetDevice . DOMAIN_NAME . DOMAIN_NAME " 

call omget using { "dns . domainname" } 

» \nExtranetSwi tch . P R IMAR Y_S ERVER . PR IMAR Y_S ERVER » 

call omget using { "dns .primarydns server " } 

" \nExtrane tSwi tch . SEC0NDARY_S ERVER . SEC0NDARY_S ERVER " 

call omget using { "dns . secondarydnsserver" } 

" \nExtranetSwi tch . TERTIARY_SERVER . TERTIARY_SERVER » 

call omget using { "dns . tertiarydnsserver" } 

// Obtain info for Shutdown Tab 

" \nExtranetSwi tch . DISABLE_NEW_LOGINS . DISABLE_NEW_LOGINS n 
call omget using { "Security .NewLoginsEnabled" } 

" \nExtranetSwi tch . D I S ABLE_RESTART_LOG INS . DISABLE_RESTART_LOGINS " 

call omget using { "Shutdown. DisableLoginsOnRes tart" } 

" \nExtranetSwitch . SYSTEM_SHUTDOWN . CHOICEBOX " 

call omget using { "Shutdown. Mode" } 

" \nExtranet Switch . SYSTEM_SHUTDOWN . TEXTBOX " f 

call omget using { "Shutdown . EventTimeDelay" } 

" \nExtranetSwi tch . POST_SHUTDOWN . POST_SHUTDOWN " 

call omget using { "Shutdown. Event Act ion" } 

" \nExtranet Switch . REBOOTED RIVE . REBOOT_DRIVE " 

call omget using { "DiskRdn. BootDevice" } 

// lets get some capacity stuff 
"\nExtranetSwitch.TUN_USERS.NUM_USERS " 

call omget using { "dbgroups . group [ROOT :: SUBTREE] .persons . numentries 
" \nExtranet Switch . TUN_USERS . MAX_TUNNELS " 
call omget using { "Flash. maximumusers " } 

// Obtain info for ExtranetSwitch Admin tab 

"\nExtranetSwitch.USER_ID.USER_ID 11 

call omget using { "flash. adminuid" } 

"\nExtranetSwitch. PASSWORD. PASSWORD ■ 

call omget using {" flash . adminpassword" } 

" \nExtranetSwi tch . IDLE_TIMEOUT . IDLEJTIMEOUT " 

call omget using { "DbGroups .Group [ROOT] .Accounts .Account (GENERAL, - 
] .AdminldleTimeout"} 

// Obtain info for ExtranetSwitch Service Tab 
" \nExtranetSwi tch. IPSEC. PUBLIC ■ 

call omget using{ "security .untrustedipsecenabled" } 



" \nExtranet Switch . IPSEC . PRIVATE " . 

call omget us,ing{ "security . trustedipsecenabled" } 

" \nExtrane tSwi tch . PPTP . PUBLIC " 

call omget using{ "security .untrustedpptpenabled" } 
" \nExtranet Switch . PPTP . PRIVATE " 

call omget using{ "security . trustedpptpenabled" } ' 

" \nExtranetSwitch . L2TP_L2F . PUBLIC " 

call omget using{ "security .untrustedl2f enabled" } 

"\nExtranetSwitch.L2TP_L2F. PRIVATE " 

call omget using{ "security .trustedl2f enabled" } 

" \nExtranetSwi tch. L2TP_L2F. PUBLIC " 

call omget' using{ "security .untrustedl2tpenabled" } 

" \nExtranetSwitch . L2TP_L2F . PRIVATE 11 

call omget using{ "security . trustedl2tpenabled" } 

" \nExtranetSwi tch . HTTP_PRIVATE . HTTP_PRIVATE " 

call omget using{ "security . trustedhttpenabled" } 

"\nExtranetSwitch.SNMP_PRIVATE.SNMP_PRIVATE " 

call omget using{ "security . trustedsnmpenabled" } 

"\nExtranetSwitch.FTP_PRIVATE.FTP_PRIVATE " 

call omget using{ "security . trustedf tpenabled" } 

" \nExtranetSwi tch . TELNET_PRIVATE . TELNET_PRIVATE " 

call omget using{ "security . trustedtelnetenabled" } 

" \nExtranetSwitch . ALL0W_T2T. ALL0W_T2T " 

call omget using{ "security . allowtunneltotunnel " } 

" \nExtranet Switch . ALLOW_EUTBO . ALLOW_EUTBO " 

call OmGet using { "Security . AllowClientToBranch" } 

"\nExtranetSwitch. ALLOW_BOTBO . ALLOW_BOTBO " 

call OmGet using { "Security . AllowBranchToBranch" } 



// Obtain info ExtranetSwitch AutoBackup Tab 

"\nExtranetSwitch.ABUG_ROWl.ABUG_ENABLED " . 

call omget using { "dirbackup .primaryzenabled" } 

" \nExt rane tSwitch . ABUG_R0W1 . ABUG_HOST " 

call omget using { "dirbackup .primaryhost" } 

"\nExtranetSwitch.ABUG_R0Wl.ABUG_PATH " 

call omget using { "dirbackup .primarypath" } 

"\nExtranetSwitch.ABUG_ROWl.ABUG_INTERVAL " 

pint=call omgetnum using { "dirbackup .primaryinterval" } 

pint=pint/60 

pint 

" \nExtranetSwitch . ABUG_R0W1 . ABUG_USERID " 

call omget using { "dirbackup .primaryusername" } 

"\nExtranetSwitch. ABUG_R0W1 .ABUG_P AS SWORD " 

call omget using { "dirbackup .primarypas sword" } 

"\nExtranetSwitch.ABUG_R0W2 . ABUG_ENABLED " 

call omget using { "dirbackup . secondaryzenabled" } 

" \nExt rane tSwi tch. ABUG_ROW2 .ABUG_H0ST " 

call omget using { "dirbackup . secondaryhost" }~ 

" \nExtranet Switch . ABUG_R0W2 . ABUG_PATH " 

call omget using { "dirbackup . secondarypath" } 

"\nExtranetSwitch.ABUG_R0W2 . ABUG_INTERVAL " 

sint=call omgetnum using { "dirbackup . secondaryinterval" } 

sint=sint/60 

sint 

"AnExtranetSwitch. ABUG_R0W2 . ABUG_USERID " 

call omget using { "dirbackup . secondaryusername" } 



M \nExtranetSwitch. ABUG_R0W2 . ABUG_P AS SWORD " 

call omget using { "dirbackup . secondarypas sword " } 

" \nExtranet Switch . ABUG_ROW3 . ABUG_ENABLED " 

call omget using { "dirbackup . tertiaryzenabled" } 

"\nExtranetSwitch.ABUG_ROW3 .ABUG_HOST » 

call omget using { "dirbackup . tertiaryhost " } 

'» \ nEx t r ane t S wi t ch. AB UG_ROW3 .ABUG_PATH " 

call omget using { "dirbackup . tertiarypath" } 

" \nExt r ane t Switch . ABUG_R0W3 . ABUG_ INTERVAL " 

tint^call omgetnum using { "dirbackup . tertiaryinterval " } 

tint=tint/60 

tint 

" \nExtranet Switch . ABUG_R0W3 . ABUG_USERID " 
call omget using { "dirbackup . tertiaryusername" } 
"\nExtranetSwitch.ABUG_ROW3 . ABUG_PASSWORD " 
call omget using { "dirbackup . tertiarypas sword" } 

// obtain the boot configuration from switch 
entry = call- omfirst using { "namedconf ig" } 
cond = (entry != "") 

" \nExt ranet Switch . BOOT_SELECT .BOOT_SELECT " 
while cond using 

.{ 

call omget using { "namedconf ig [ "entry" ]. desc" } 
n ii 

entry = call omnext using { "namedconf ig [ "entry" ]" } 
cond = (entry != "") 

} 

// obtain performance data 

fkey = call omfirst using { "DC. SummaryHi story " } 

cond = (fkey != "") 
while cond using 

{ 

svDateString=call omget using { "DC . SummaryHi story [ "fkey" ] .Time stamp" } 
svTotalKey=svDateString+" : : TOTAL " 
"\nExtranet Performance. TRENDING " 
svDateString . 
M ii 

call omget using { "DC . SummaryHi story ["svTotalKey" ] .TotalSessions " } 
ii n 

call omget using { "DC . SummaryHi story ("svTotalKey"] . AdminSessions" } 
ii ii 

call omget using { "DC . SummaryHi story ( " svTotalKey" ] . PPTPSessions " } 
H ii 

call omget using { "DC. SummaryHi s t ory [" svTotalKey" ]. IPSecSess ions" } 
ii ii 

call omget .using { "DC. SummaryHi story ["svTotalKey"] . L2FSessions " } 

call omget using { "DC. SummaryHi st ory [" svTotalKey" ] ,L2TPSessions" } 
"\nback" 



fkey = call omnext us ing{ "DC. SummaryHi story ("fkey" ]" } 
cond = (fkey != "") 

} 



// obtain the, SNMP trap receivers 
Error - ,M ' 
entry = 

entry = call omfirst using { " traphost " } 

if ( ( entry == "")&& ( Error = = "Failure") ) then using 
{ 

* Error = "" 

} * 
if ( entry != " " ) then using 

{ . 

cond = (entry ! = » ") 
while cond using 

{ 

'» \ nBay P_Ex t ranetSNMP . TRAP JTABLE * " 
""entry" " 

call omget using { "traphost ["entry"] . enabled" } 
it ii 

call omget using .{ "traphost [ "entry"] . community" } 
"\nback" 

entry = call omnext using { "traphost ["entry"] " } 
cond = (entry != "") 

1 

} 

// obtain the various snmp scripts 
Error - " " 

f ilename=call omfirst using {"script"} 

if (( filename = = »» ) && (Error == "Failure" ) ) then using 
{ 

Error = nn 

} 

cond = (filename " ") 
while cond using 

{ 

M \nBayP_ExtranetSNMP . SCRIPTJTABLE " 

//call omget using { "script ( "filename"] .description" } 
file = call omget using {"script ["filename"] .description" } 
" 1 "file" ' " 

call omget using { "script [" filename "]. interval" } 
it ti 

call omget using { "script [ "filename" ]. repeatcount " } 

" . "filename"" 

"\nback" 

filename = call omnext using { "script ["filename"] " } 
cond = ( filename !.= 11 " ) 

} 

"\nback" 

// obtain the IPX parameters 

" \nExtranet IPX . PUB_NET_ADDR . PUB_NET_ADDR " 

call omget using { "ipxintf omcls . ipxpublicaddress " } 

" \ nEx t r ane 1 1 PX . NEAR_S ERVER . NEAR SERVER " 



nearserv = call omget using { "ipxintfomcls . def aultnearestserver" } 
" '"nearserv", 1 " 

" \ nEx t r ane tIPX. MAX_S AP . MAX_S AP » 

call omget using { "ipxintf omcls . sapentries 11 } 

// obtain the IPX interfaces 

ifacekey = call omfirst using { "Ipxintf OmCls . IpxPrivat eLANS " } 
cond = (ifacekey != "") 
while cond using 

{ 

//get values for row 
"\nExtranetIPX. Interf aceJTable " 
ifacekey 
ti it 

call omget using {" Ipxintf OmCls . IpxPrivat eLANS [ "if acekey" ]. Slot " } 
■I it 

call omget using { "Ipxintf OmCls . IpxPrivat eLANS ["ifacekey"] . Port" } 

H it . ■ , 

call omget using { "Ipxintf OmCls . IpxPrivat eLANS [ " if acekey" ]. IpxAddress " } " » 

call omget using { "Ipxintf OmCls . IpxPrivat eLANS ["ifacekey"] . Encap" } 
ii M 

call omget using { "Ipxintf OmCls . IpxPrivateLANS ["ifacekey"] . Enable" } 
"\nback" 

ifacekey = call omnext using 

{ "ipxintf omcls . ipxprivatelans ["if acekey"] " } 
cond = (ifacekey != "") 

} * . . - 

"\nback" 



// obtain RADIUS authentication 
Error= " " 

" \nBayP_RadAuth_Server . ENAB LE_RAD I US . ENABLE_RADIUS " 
call omget using { "DbRadiusAuthServers . Enabled" } 

svAuthKey = call omfirst using { "DbRadiusAuthServers . RadiusAuthServer " } 

//if no key, then need to create a server entry in the database 

if (svAuthKey "") then using 

{ 

Error = "" 

BaseDn = call omget using { "LdapConf ig . BaseName" } 

svAuthKey="cn=radiusl, ou=Radius, ou=AuthenticationServers , "+BaseDn 

call omcreate using { "DbRadiusAuthServers .RadiusAuthServer ["svAuthKey"] " } 

if (svAuthKey != "") then using 
{ 

//do gets from, database 
" \nBayP_RadAuth_Server . DELIMITER . REMOVE_SUFFIX " 
call omget using 

{ "DbRadiusAuthServers . RadiusAuthServer [ " svAuthKey" ] . StripUidSuf f ix" } 
"\nBayP_RadAuth_Server. DELIMITER. DELIMITER " 
raddel=call omget using 

{ "DbRadiusAuthServers. RadiusAuthServer ["svAuthKey"] .uidSuf f ixDelimeter" } 
" '"raddel" 1 " 

" \nBayP_RadAuth_Server . ENAB L E_AX ENT . ENABLE — AXENT " 



call omget using 

{ "DbRadiusAuthServers .RadiusAuthServer ["svAuthKey" ] . AuthMethodAXENT" } 
" \nBayP_RadAuth_Server . ENABLE_SECURID . ENABLE_SECURID " 
call omget using 

{ "DbRadiusAuthServers . RadiusAuthServer ["svAuthKey"] . AuthMethodSECURID" } 
"\nBayP_RadAuth_Server . ENABLE_CHAP . ENABLE_CHAP " 
call omget using 

{ "DbRadiusAuthServers .RadiusAuthServer ["svAuthKey"] . AuthMethodCHAP " } 
" \nBayP_RadAuth_Server . EN AB L E_M S CHAP . ENABLE_MSCHAP " 
call omget using 

{ "DbRadiusAuthServers .RadiusAuthServer ["svAuthKey"] . AuthMethodMSCHAP"^} 
" \nBayP_RadAuth_Server . ENABLE_PAP . ENABLE_PAP " 
call omget using 

{ "DbRadiusAuthServers . RadiusAuthServer [ " svAuthKey" ] . AuthMethodPAP " } 
//host enable 

" \nBayP_RadAuth_Server . ENABLE_PRIMARY-. ENABLE_PRIMARY " 

call omget using . ■ 

{ "DbRadiusAuthServers .RadiusAuthServer ["svAuthKey"] . PrimaryHostEnabled" } 
M \nBayP_RadAuth_Server.ENABLE_ALTl.ENABLE_ALTl " 

call omget using 

{ "DbRadiusAuthServers .RadiusAuthServer ["svAuthKey"] . AlternatelHostEnabled " } 
" \nBayP_RadAuth_Server . ENABLE_ALT2 . ENABLE_ALT2 " 
call omget using 

{ "DbRadiusAuthServers .RadiusAuthServer ["svAuthKey"] . Alternate2HostEnabled" } 
//host names 

" \nBayP_RadAuth_Server . P R I M_HO S TNAME . PRIM_HOSTNAME " 
call omget using 

{ "DbRadiusAuthServers .RadiusAuthServer ["svAuthKey"] . PrimaryHost " } 
" \nBayP_RadAuth_Server . ALT1_H0STNAME . ALT 1_H0S TNAME " 
call omget using 

{ "DbRadiusAuthServers .RadiusAuthServer ["svAuthKey"] . AlternatelHos t " } 
"\nBayP_RadAuth_Server.ALT2_HOSTNAME.ALT2_HOSTNAME » 
call omget using 

{ "DbRadiusAuthServers .RadiusAuthServer ["svAuthKey"] . Alternate2Host " }' 
//ports 

" \nBayP_RadAuth_Server . PRIM_PORT . PRIM_PORT " * 
call omget using 

{ "DbRadiusAuthServers . RadiusAuthServer [ "svAuthKey" ] . PrimaryHos tPort " } 
"\nBayP_RadAuth_Server . ALT1_P0RT. ALT1_P0RT " 
call omget using 

{ "DbRadiusAuthServers . RadiusAuthServer [ " svAuthKey" ] . AlternatelHos tPort " } 
" \nBayP_RadAuth_Server . ALT2_P0RT . ALT2_P0RT " 
call omget -using 

{ "DbRadiusAuthServers .RadiusAuthServer ["svAuthKey"] . Alternate2HostPort " } 
//passwords 

" \nBayP_RadAuth_Server . PRIM_SECRET . PRIM_SECRET " 
call, omget using 

{ "DbRadiusAuthServers . RadiusAuthServer [ " svAuthKey" ] . PrimaryHost Password" } 
"\nBayP_RadAuth_Server . ALT1_SECRET. ALT1_SECRET " 
call omget using 

{ "DbRadiusAuthServers .RadiusAuthServer ["svAuthKey"] . AlternatelHostPassword" } 
" \nBayP_RadAuth_Server . ALT2_SECRET . ALT2_SECRET " 



call omget using 

{ "DbRadiusAutJiServers . RadiusAuthServer [ "svAuthKey" ] . Alternate2HostPassword"'} 



// obtain RADIUS accounting 

" \nBayP_RadAcct_Server . ENABLE_INT_RADIUS . ENABLE_INT_RADIUS " 
call omget using { "DbRadiusAcctServers . Enabled" } 

accsrvkey = call omfirst using { "DbRadiusAcctServers . RadiusAcctServer 11 } 
if ( (> accsrvkey == »» ) ( Error == "Failure" ) ) then using 
Error = 1,11 

} 

//if no key, then need to create entry 
if (accsrvkey == "" ) then using 

{ 

BaseDn = call omget using { "LdapConf ig . BaseName" } 
if ( Error == "" ) then using 

{ 

accsrvkey="cn=accl, ou=radius, ou=accounting servers, "+BaseDn 
call omcreate using 
{ "DbRadiusAcctServers .RadiusAcctServer ["accsrvkey"] " } 

if ( Error == "" ) then using 

accsrvkey=call omfirst using 
{ "DbRadiusAcctServers .RadiusAcctServer" } 

} . 

} 

//host enable 

if ( accsrvkey != ■"■ ) then using 

( • ' 

" \nBayP_RadAcct_Server . ENABLE_EXT_RADIUS . ENABLE_EXT_RADIUS " 
call omget using 

{ "DbRadiusAcctServers . RadiusAcctServer [ "accsrvkey" ] .HostEnabled" } 

//host names 
"\nBayP_RadAcct_Server. HOSTNAME. HOSTNAME " 

call omget using { "DbRadiusAcctServers . RadiusAcctServer [ "accsrvkey" ]. Host " 
//ports 

"\nBayP_RadAcct_Server . PORT. PORT " 
call omget using 
{ "DbRadiusAcctServers .RadiusAcctServer [ "accsrvkey"] .HostPort" } 
" \nBayP_RadAcct_Server . SECRET . SECRET " 
call omGet using 

{ "DbRadiusAcctServers .RadiusAcctServer ["accsrvkey"] .HostPassword" } 

} . 

" \nBayP_RadAcct_Server . UPDATE_INTRVL . UP DAT E_ I NTR VL " 

call omget using { "DbGroups . Group [ROOT] .Accounts .Account [GENERAL, - 

] .AcctUpdateFreq"} 



// obtain Info on which LDAP we are using 



"\nBayP_LDAP . INTERNAL_EXTERNAL " 

call omget using { "LdapConf ig . useremote" } 

// get info for internal LDAP 
"\n3ayP_IntLDAP_Server.IS_RUNNING " 
call omget using { "Slapd. IsRunning" } 

keyLocalAuthServer = call omfirst using { "DbLocalAuthServers . LocalAuthServer" } 
"\nBayP_IntLDAP_Server. SUFFIX J*0W.REMOVE_FR0M_UID " 
ildapui=call omget using 

{ "DbLocalAuthServers . LocalAuthServer [ "keyLocalAuthServer" ] . stripUidSuf f ix" } 
if (ildapui == "") then using 

{ 

" FALSE" 

} - ' 

else using 

{ • - 

- " 1 "ildapui" 

} 

" \nBayP_IntLDAP_Server . SUFFIX_ROW . DELIMITER. " 
ildapdel=call omget using 

{ "DbLocalAuthServers .LocalAuthServer ["keyLocalAuthServer"] .UidSuf f ixDelimeter" } 
ildapdel"' » 

// obtain info for external LDAP 

"\nBayP_ExtLDAP_Server.SUFFIX_ROW.REMOVE_FROM_UID » 
eldapui=call omget using 

{ "DbLocalAuthServers . LocalAuthServer [ "keyLocalAuthServer" ] . stripUidSuf f ix" } 
if (eldapui == *"*) then using 

{ 

"FALSE" 

} 

else using 

{ 

" 1 "eldapui » » » 

} 

"\nBayP_ExtLDAP_Server,SUFFIX_ROW. DELIMITER " 
ldapdel=call omget using 

{ "DbLocalAuthServers . LocalAuthServer [ "keyLocalAuthServer" ] . UidSuf f ixDelimeter " } 
" '"Idapdel" ■ 11 

"\nBayP_ExtLDAP_Server . BASE_DN. BASE_DN " 

basedn = call omget using { "ldapconf ig . remotebasename" } 

" • "basedn" 1 " 

"\nBayP_ExtLDAP_Server. MASTER. ELDAP_HOSTNAME » 
call omget using { " Idapprof ileserver [0] . host " } 
"\nBayP_ExtLDAP_Server. MASTER. PORT " 
call omget using {" Idapprof ileserver [0] . usessl " } 

it n - 

call omget using { "Idapprof ileserver [0] .port" } 
ii M 

call omget using { "Idapprof ileserver [0] . sslport" } 
" \nBayP_ExtLDAP_Server . MASTER . BIND_DN " 

masterdn = call omget using {" Idapprof ileserver [0] . bindname " } 
" ' "masterdn" 1 " 

" \nBayP_ExtLDAP_Server . MASTER . B IND_PASSWORD » 



call omget using { " ldapprof ileserver [0] . bindpas sword" } 

"\nBayP_ExtLO&P_Server.SLAVEl.ELDAP_HOSTNAME " 

call omget using { "ldapprof ileserver [1] . host " } 

" \nBayP_ExtLDAP_Server . SLAVE1 . PORT 11 

call omget using {" ldapprof ileserver [1] .usessl " } 
ii ii 

call omget using {" ldapprof ileserver [1] .port " } 
ii ti 

call omget using { 11 ldapprof ileserver [1] . sslport" } 
"\nBayP_ExtLDAP_Server . SLAVE1 .BINDJDN " 

slaveldn = call omget using {» ldapprof ileserver [1] . bindname" } 
" » "slaveldn" ■ " 

" \ nB ay P_Ex t LD AP_S erver.S LAVE 1 . B IND_P AS SWORD " 

call omget using {" ldapprof ileserver [1] .bindpas sword" } 

"\nBayP_ExtLDAP_Server.SLAVE2 . ELDAP^HOSTNAME " 

call omget using { " ldapprof ileserver [2 ]. host " } 

"\nBayP_ExtLDAP_Server . SLAVE2 . PORT " ' 

call omget using { "ldapprof ileserver [2] .usessl"} 
H ii 

call omget using { "ldapprof ileserver [2] .port " } 
ii H 

call omget using {" ldapprof ileserver [2 ]. sslport " } 
" \nBayP_ExtLDAP_Server . SLAVE 2 . BIND_DN " 

slave2dn = call omget using {" ldapprof ileserver [2] .bindname" } 
" ' "slave2dn ■ 

"\nBayP_ExtLDAP_Server.SLAVE2 . BIND_P AS SWORD " 
call omget using {" ldapprof ileserver [2 ]. bindpassword" } 

.cipherkey=call omfirst using { "SslConf ig . CipherSpec" } 
ccond = (cipherkey »= NULL) 
while ccond using 

{ , ' 

"\nBayP_ExtLDAP_Server .Encrypt ionJTable " 
//get values for row 

call omget using { "SslConf ig . CipherSpec [ "cipherkey" ]. Enabled" } 
ii ii 

name = call omget using { "SslConf ig. CipherSpec ["cipherkey"] .Name" 

" ' "name" ' " 

"\nback" 

cipherkey = .call omnext using{ "SslConf ig. CipherSpec ("cipherkey"] " } 
ccond = (cipherkey != "") 

} 

"\nback" 

// Obtain User IP address pool information 

"\nBayP_UserIP_Server 1 ADDR_ACQUIS . ADDR_ACQUIS " 

call omget using { "AddressAcquisition . Acquis itionType" } 

"\nBayPJJserIP_Server . CACHE. SIZE " 

call omget using { "AddressAcquisition. DHCPCacheSize" } 
"\nBayP_UserIP_Server .RELEASE. IMMEDIATE " 

call omget using { "AddressAcquisition . DHCPReleaselmmediately" } 

"\nBayP_UserIP_Server . DHCP. TYPE " 

call omget using { "Address Acquisition. DHCPType" } 

"\nBayP_UserIP_Server . PRIMARY_SERVER " 

call omget using{ "DhcpServer [0] . ServerAddress " } 



"\nBayPJJserIP_Server . SECOND ARY_SERVER " 

call omget using { "DhcpServer [1] TserverAddress" } 

"\nBayP_UserIP_Server • TERTIRARY_SERVER " 

call omget us ing{ "DhcpServer [2] . ServerAddress " } 

AddrKey * call omfirst using {"IpAddr Pool"} 

ccond = (AddrKey ! = '"') 

while ccond using 

{ ■ ' 

"\nBayP_UserIP_Server . ADDR_TABLE " 

call omget using {" IpAddrPool [ "AddrKey" ]. startaddr" } 

II M 

call omget using {» IpAddrPool [ "AddrKey" ]. endaddr" } 
ti h 

call omget using { '» IpAddrPool [ "AddrKey" ] . number ofaddrs " } 
it ii 

AddrKey 

"\nback" * - 

AddrKey = call omnext using {" IpAddrPool [ "AddrKey" ] "-} 
ccond = (AddrKey != ""') 

} 

"\nback" 

// obtain ethernet interface information 



Entry ■ call omfirst using {"Interface"} * 

if ( ( Entry == "" ) ( Error == "Failure" ) ) then using 

{ 

Error = "" 
} 

CondEntry = (Entry ! = »") 
while CondEntry using 

{ 

lookType = call omget using {" Interface [ "Entry "]\ Type" } 

// only do for lan interfaces 
if (lookType == 2) then using 

( ' 

" \nExtranet Interface .LAN_Interf ace " 

call omget using { "Interface [ "Entry"] . slot 11 } 
ii ii 

call omget using { "Interface ["Entry"] . Interface" } 
ii h 

call omget using { "Interface ["Entry"] .DefaultGateway" } 
it n 

lookLoc = call omget using { "Interface ["Entry" ] .DevLoc" } 
" "lookLoc" " 

call omget using { "Interface [ "Entry" ]. Public" } 

call omget using {" Interface [ "Entry" ]. Enabled" } 

tl M 

desc = call omget using { "Interface ["Entry"] .Desc" } 
if ( desc i= "" ) then using 

{ 

'«-' "desc" ' " 

} 



else using 

{ ' ■ 

ii i i it 

}. 

iplntf = call omfirst using {"Iplntf"} 

if ( ( iplntf == ■» ) && ( Error == "Failure" ) ) then usinq 
{ 

Error = " " 

} 

Condiplntf - (iplntf != "") 
while Condiplntf using 

{ ■ 

ipDevLoc = call omget using { "iplntf [ "iplntf " ] .DevLoc" } 

if { ipDevLoc » lookLoc ) then* using 

{ 

isSystem = call omget using { "iplntf ["iplntf "] . IsSystemlpAddr" } 

// only do for the non-system interfaces 

if { isSystem == "NO" ) then using 

{ 

// Keep count of the number of addresses for this card 

call omget using { "iplntf ["iplntf "] . IpAddr" } 
ii ti 

call omget using {" Iplntf [" iplntf "]. Subnet " } 



} 

} 

iplntf = call omnext using { "Iplntf ["iplntf "]" } 
Condiplntf = (iplntf 1= "") 

} 
} 

Entry = call omnext using { "Interface [''Entry"] " } 
CondEntry = (Entry != »" ) 

} 

// obtain WAN information 

Entry = call omfirst using {"Interface"} 

if ( ( Entry == "" ) && ( Error == "Failure" ) ) then using 

{ 

Error = "" 
} 

CondEntry = (Entry != »») 
while CondEntry using 

{ 

lookType = call omget using {" Interface ["Entry" ]. Type" } 
lookDESC = call pmget using { "Interface ("Entry"] .Hardware" } 

// only do for wan interfaces 
if (lookType == 1) then using 

{ . 



if (lopkDESC != "empty") then using 
{ 

"\nExtranetInterf ace . WAN_Interf ace " 

call omget using { "Interface ["Entry"] . slot" } 
ti ii 

call omget using { "Interface ["Entry"] . Interface" } 
ii H 

lookLoc = call omget using {" Interface ["Entry" ]. DevLoc" } 
» "lookLoc" » 

call omget using {" Interface [ "Entry" ]. Enabled" } 
ii »» 

desc = call omget using { "Ppplntf [" lookLoc "]. description" } 
if ( .desc 1= "" ) then -using 

{ " 

» • n desc" 1 " 

} 

else using 

{ 

ii i i 

} - 

locip=call omget using { "Ppplntf ["lookLoc"] . localipaddress" } 
1,1 "locip" ' " 

ipcp=call omget using { "Ppplntf ["lookLoc" 3 . ipcpacceptremote" }■ 
if (ipcp == " ") then using 

{ 

" FALSE " 

} 

else using 

{ 

" 1 "ipcp" ' " 

} 

peerip=call omget using { "Ppplntf ["lookLoc"] .peeripaddress" } 
" '"peerip"' ". 

nopap=call omget using { "Ppplntf [ "lookLoc" ] .NoPapNeg" } 
if (nopap == "") then using 

{ 

" FALSE " 

} 

else using 

{ 

nopap"' " 

} 

nochap=call omget using { "Ppplntf ["lookLoc"] .NoChapNeg"} 
if (nochap == "") then using. . 

{ • • 

" FALSE " 

} 

else using 

{ 

"'"nochap"' " 

} 

name = call omget using { "Ppplntf ["lookLoc"] . LocalPapName" } 
"'"name"'" 

passwd = call omget using { "Ppplntf ("lookLoc" ]. LocalPapPasswd" } 
" • "passwd" ' " 



noa'cc=call omget using { "Ppplntf ("lookLoc"] .NoAccNeg" } 
if (noacc == " " ) then using 

{ 

"FALSE " 

} 

else using 

( 

11 ' "noacc" 1 '* 

} 

nopc=call omget using ( " Ppplntf [ " lookLoc " ] . NoPCNeg" } . 
if (nope == " ") then using 

{ 

" FALSE " 

} 

else using 

{ . . 

" ■ "nope" 1 " * 

} 

lcpfail=call omget using {" Ppplntf [" lookLoc" ]. LCPEchoFailure" } 
" •"Icpfail" » " 

lcpint=call omget using {" Ppplntf [" lookLoc" ] . LCPEchoInterval" } 
■» 1 "lcpint" 1 " 

novj=call omget using { "Ppplntf [" lookLoc" ] .No VJNeg" } 
if (novj "") then using 

{ 

" FALSE " 

} • • • 

else using 

{ 

" 1 "novj " * " 

} 

novjc=call omget using { "Ppplntf ["lookLoc"] .No VJCCompNeg" } * 
if (novjc == "") then using 

{ 

"FALSE " 

' } 

else using 

{ . 

» 1 » novj c " 1 " 

} 

vjslots=call omget using { "Ppplntf [" lookLoc" ]. VJMaxSlots " } 
" 1 "vj slots " 1 " 

} J • 
' } 

Entry. = call omnext using { "Interface ["Entry"] " } 
CondEntry = (Entry != "" ) 

} 

// obtain PPTP information 
" \nBayP_Tunnel . PPTP " 

call omget using { "DbGroups . Group [ROOT] . Accounts . Account [PPTP, - 
] . AuthServerRef 2Type" } 
ii ii 

call omget using { "DbGroups ."Group [ROOT] .Accounts .Account [PPTP, - 
] .AuthServerRef 3Type"} 

" \ nBayP_Tunrie 1 . PPTP_MSCHAP_ROW . NOT_ENCRYPT " 

call omget using { "Dbgroups . Group [root] .Accounts .Account [PPTP, - 
] .Def aultEncryptionNone" } 



"\nBayP_Tunnel . PPTP_MSCHAP_ROW . MSCHAP " 

call omget using { "Dbgroups .Group [root] .Accounts .Account [PPTP, - 
] .Def aultEncryptionRC4_12 8" } 
"\nBayP_Tunnel . PPTP_MSCHAP_ROW.RC44 0 " 

call omget using { "Dbgroups .Group [root] .Accounts .Account [PPTP, - 

] . DefaultEncryptionRC4_40"} 

" \nBayP_Tunnel . PPTP_CHAP . PPTP_CHAP " 

call omget using { "Dbgroups .Group [root] .Accounts .Account [PPTP, - 

] .Default AuthMethodChap" } 

" \nBayP_Tunnel . PPTP_PAP . PPTP_PAP " 

call omget using { "Dbgroups .Group [root] .Accounts .Account [PPTP, - 
] .Def aultAuthMethodPAP" } 

II obtain L2TP information 
// " \nBayP — Tunnel . L2TP " - 

//call omget using ( "DbGroup s. Group [ROOT] .Accounts .Account [L2TP, 
] . AuthServerRef 2Type" } 
//" - 

//call omget using { "DbGroups .Group [ROOT] .Accounts .Account [L2TP, 
] .AuthServerRef 3Type" } 

' 11 \ nB ay P Tunne 1 . L2TP_MSCHAP_R0W . NOT_ENCRYPT " 

call omget using { "Dbgroups .Group [root] .Accounts .Account [L2TP, - 
] .Def aultEncryptionNone" } 
"\nBayP_Tunnel . L2TP_MSCHAP_R0W . MSCHAP " 

call omget using ■{ "Dbgroups .Group [root] .Accounts .Account [L2TP, - 
] .DefaultEncryptionRC4_128" } 
"\nBayP_Tunnel . L2TP_MSCHAP_R0W . RC44 0 " 

call omget using { "Dbgroups . Group [root] .Accounts .Account [L2TP, - 
] .Def aultEncryptionRC4_40" } 
"\nBayP_Tunnel . L2TP_CHAP . L2TP_CHAP " 

call omget using { "Dbgroups .Group [root] .Accounts .Account [L2TP, - 
] .DefaultAuthMethodChap" } 
"\nBayP_Tunnel.L2TP_PAP.L2TP_PAP " 

call omget using { "Dbgroups . Group [root] .Accounts .Account [L2TP, - 

] .Def aultAuthMethodPAP"} 

//"\nback" 

// obtain L2F 

"\nBayP_Tunnel . L.2F " 

call omget using { "DbGroups . Group [ROOT] .Accounts .Account [L2F, - 
] .AuthServerRef 2Type" } » » 

call omget using { "DbGroups .Group[ROOT] .Accounts .Account [L2F, - 
] .AuthServerRef 3Type»'} 

"\nBayPJI\innel.CHAP_ENABLED.CHAP_ENABLED " 

call omget using { "Dbgroups .Group [root] .Accounts .Account [L2F, - 
] .DefaultAuthMethodChap" } 

" \nBayP_Tunne 1 . PAP_ENABLED . P AP_ENAJ3 LED " 

call omget using { "Dbgroups . Group [root] .Accounts .Account [L2F, - 

] .DefaultAuthMethodPap" } 

"\nback" 

// obtain IPSec information 
reallPsecKey = "" 

groupKey = call omfirst using { "DbGroups .Group" } 

if ( ( groupKey == "" ) ( Error "Failure" ) ) then using 



{ . • . 

// can safely. ignore this error 
• Error = "" 

} 

if ( groupKey != "" ) then using 

{ * 
accountKey = call omfirst using 

{ "DbGroups .Group ("groupKey"] .Accounts .Account"} 

if ( ( accountKey »" ) ( Error == "Failure" ) ) then using 

// can safely ignore this error . 
Error = 

} ' * 

accountCondition = (accountKey ! = "") ( reallPsecKey == "" ) 
. while accountCondition using 

{ 

accountType = call omget using 
{ "DbGroups .Group ["groupKey"] .Accounts .Account ["accountKey"] . TunnelType " } 
if { accountType == "IPsec" ) then using 

{ ' 
reallPsecKey = accountKey 

} 

accountKey = call omnext using 
{ "DbGroups .Group ["groupKey"] .Accounts .Account ["accountKey"] " } 

accountCondition = {(accountKey != "") (reallPsecKey == "" )) 
} // while there is a subaccount 
} // End - groupkey != NULL 

" \nBayP_Tunnels .IPSEC " 
refl=call omget using 

{ "DbGroups .Group [ROOT] .Accounts .Account ["reallPsecKey" ] . AuthServerRef 2Type" } ■ 
" 1 " re f 1 " 1 " ' 
"\nBayPJTunnelsIP.AUTH_USER.AUTH_USER " 
call omget using 

{ "DbGroups .Group [ROOT] .Accounts . Account [" reallPsecKey" ] . Def aul tAuthMethodSHARED_ 
SECRET" } 

"\nBayP_Tunnel si P. AUTHORS A. AUTHORS A " 
call omget using 

{ "DbGroups .Group [ROOT] .Accounts .Account ["reallPsecKey"] .Def aultAuthMethodCERTIFI 
CATE_RSA" } 

" \nBayP_Tunne 1 s IP . RADAUTH_AXENT . RAD AUTH_AX ENT " 
call omget using 

{ "DbGroups .Group [ROOT] .Accounts .Account ["reallPsecKey"] .Def aultAuthMethodAXENT" 
} 

" \nBayP_TunnelsIP . RADAUTH_SECURITY . RADAUTH_SECURITY " 
call omget using 

{ "DbGroups .Group (ROOT] .Accounts . Account ["reallPsecKey"] . Def aultAuthMethodSECURID 
" } 

"\nBayP_TunnelsIP.RADAUTH_GROUP.RADAUTH_GROUP " 
call omget using 

{ "DbGroups .Group [ROOT] .Accounts .Account ("reallPsecKey"] . Def aultAuthMethodPAP" }. 
"\nBayPJTunnelsIP.ENCRYPJTRIPLE.ENCRYP_TRIPLE " 
call omget using 

{ "DbGroups .Group [ROOT] .Accounts . Account ("reallPsecKey"] .Def aultEncryption3DES_MD 
5" } 



"\nBayP_TunnelsIP.ENCRYP_ESP56 . ENCRYP_ESP56 " 
call omget uging 

{ "DbGroups .Group [ROOT] .Accounts .Account [ "reallPsecKey"] .Def aultEncryptionDES MD5 
" } 

" \ nB ay PJTunne 1 s I P . ENCRYP_ESP4 0 . ENCRYP_ES P4 0 " 
call omget using 

{ "DbGroups .Group [ROOT] . Accounts .Account [ "reallPsecKey" ] .Def aultEncryptionDES 40" 
} 

" \nBayP — Tunnels IP . ENCRYP_AHSHA. ENCRYP_AHSHA " 
call omget using 

{ "DbGroups .Group [ROOT] .Accounts .Account ["reallPsecKey"] . Def aultEncryptionHMAC_SH 
A" } 

" \nBayP_TunnelsIP . ENCRYP_AHMD5 . ENCRYP_AHMD5 " 
call omget using 

{ "DbGroups .Group [ROOT] .Accounts .Account [ "reallPsecKey" ] . Def aultEncryptionHMAC MD 
5" } 

" \nBay PJTunne Is . LB_ENABLED . LB_ENABLED " 
call omget using { "Loadbalance . NodelEnabled" } 
" \nB ay PJTunne Is . LB_HOST . LB_HOST " 
call omget using { "Loadbalance .Nodel" } 

" \nB ay PJTunne Is . FAI LOVER 1_ENAB LED . FAI LOVER 1_ENAB LED " 
call omget using { "Failover . Nodelenabled" } 
"\nBayPJTunnels . FAI LOVER 1_IPADDR. FAIL0VER1_IPADDR " 
call omget using { "Failover .Nodel" } 

" \nBay PJTunne Is . FAILOVER2_ENABLED . FAILOVER2_ENABLED » 
call omget using { "Failover .Node2 enabled" } 
"\nBayP_Tunnels.FAILOVER2_IPADDR.FAILOVER2_IPADDR » 
call omget using { "Failover . Node2 " } 

■"\nBayP_Tunnels . FAILOVER3_ENABLED . FAILOVER3_ENABLED " 
call omget using { "Failover . Node3 enabled " } 
"\nBayPJTunnels . FAILOVER3_IPADDR. FAILOVER3_IPADDR " 
call omget using { "Failover .Node3 " } 
"\nback" 



